Re: Signature verification in GRUB

From:

Matthew Garrett

Subject:

Re: Signature verification in GRUB

Date:

Wed, 10 Oct 2012 19:33:11 +0100

User-agent:

Mutt/1.5.20 (2009-06-14)

On Tue, Oct 09, 2012 at 06:32:49PM -0600, Chris Murphy wrote:
> Basically Fedora 18 will be the first Fedora to support UEFI Secure
> Boot. They are moving to a shim bootloader before GRUB2 because GRUB2
> is GPLv3 licensed, which requires making signing keys available
> (Installation Method requirement) so users can still make their own
> modifications and boot the system with those modifications.
This isn't quite accurate - GPLv3 wasn't an issue, but using shim makes
it easier to guarantee that users can exercise their freedoms and also
means we don't have to upload a binary to Microsoft every time we update
grub.
--
Matthew Garrett | address@hidden